An out of bounds read was discovered in H5O_fill_new_decode and H5O_fill_old_decode in H5Ofill.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service or information disclosure attack.
References
Link | Resource |
---|---|
https://github.com/TeamSeri0us/pocs/blob/master/hdf5/README2.md | Third Party Advisory |
https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5 | Exploit Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2023/08/msg00009.html | |
https://github.com/TeamSeri0us/pocs/blob/master/hdf5/README2.md | Third Party Advisory |
https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5 | Exploit Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2023/08/msg00009.html |
Configurations
History
21 Nov 2024, 03:42
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/TeamSeri0us/pocs/blob/master/hdf5/README2.md - Third Party Advisory | |
References | () https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5 - Exploit, Third Party Advisory | |
References | () https://lists.debian.org/debian-lts-announce/2023/08/msg00009.html - |
09 Aug 2023, 09:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2018-05-16 15:29
Updated : 2024-11-21 03:42
NVD link : CVE-2018-11206
Mitre link : CVE-2018-11206
CVE.ORG link : CVE-2018-11206
JSON object : View
Products Affected
hdfgroup
- hdf5
CWE
CWE-125
Out-of-bounds Read